No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Command Reference

OceanStor 18000 and 18000F V5 Series V500R007

This document is applicable to OceanStor 18500 V5, 18800 V5, 18500F V5, and 18800F V5. Based on the CLI provided by DeviceManager, this document describes how to use various commands classified by functions and how to set the CLI and manage the storage system through these commands. The document that you browse online matches the latest C version of the product. Click Download to download documents of other C versions.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
change safe_strategy

change safe_strategy

Function

The change safe_strategy command is used to change the password and login policies of a storage system.

Format

change safe_strategy [ pwd_min_length=? ] [ pwd_max_length=? ] [ pwd_complex=? ] [ reduplicate_char_count=? ] [ enable_pwd_lock=? ] [ pwd_lock_time=? ] [ pwd_incorrect_times=? ] [ session_expired_time=? ] [ min_valid_period=? ] [ max_valid_period=? ] [ prompt_ahead=? ] [ history_count=? ] [ user_review_enable=? ] [ user_review_interval=? ] [ enable_inactive_lock=? ] [ inactive_lock_interval=? ] [ name_minimal_length=? ] [ enable_login_notes=? ] [ enable_user_notes=? ] [ user_notes=? ] [ reject_default_password=? ]

Parameters

Parameter

Description

Value

pwd_min_length=?

Minimum length of a password.

The value is an integer between 8 and 32.

pwd_max_length=?

Maximum length of a password.

The value is an integer between 8 and 32.

pwd_lock_time=?

Duration before an account is automatically unlocked.

The value is "0" or an integer between 3 and 2000, expressed in "minutes". If the value is "0",

the account will be permanently locked.

pwd_complex=?

Password complexity.

The value can be "Normal" or "High", where:

  • "Normal": The password must contain special characters, and at least two of the following three: uppercase letters, lowercase letters, and digits.
  • "High": The password must contain special characters, uppercase letters, lowercase letters, and digits.

reduplicate_char_count=?

Maximum number of consecutive same characters in a password.

The value can be "0", "1", "2", "3", "4", "5", "6", "7", "8", or "9".

If the value is "0", it means no limit.

prompt_ahead=?

Number of remaining days before password expiration to display a reminder. If this parameter value is specified, the system displays a reminder before password expiration based on the specified value.

The value is an integer between 1 and 99, expressed in "days", and must not be greater than the value of "max_valid_period".

user_notes=?

User-defined login prompt information.

The length of the notification is an integer between 1 and 511, expressed in "Bytes".

user_review_interval=?

Account audit interval.

The value is an integer between 0 and 999, expressed in "days". If the audit interval is set to 0 or 1 day, the system audits user accounts every day.

inactive_lock_interval=?

Number of days before an inactive account is automatically locked.

The value is an integer between 1 and 999, expressed in "days".

pwd_incorrect_times=?

Allowed times for entering incorrect passwords.

The value is an integer between 1 and 9.

enable_pwd_lock=?

Whether to enable the password lock mechanism. After the password lock mechanism is enabled, a user will be locked if the user enters incorrect password for times that exceed the threshold.

The value can be "yes" or "no".

session_expired_time=?

Session timeout period. If you have not performed any operation in a timeout period that you have set, the system automatically logs you out.

The value is an integer between 1 and 100, expressed in "minutes".

min_valid_period=?

Minimum validity period of a new password.

The value is an integer between 0 and 9999, expressed in "minutes".

max_valid_period=?

Password validity period.

The value is an integer between 0 and 999, expressed in "days", and must not be smaller than the value of "prompt_ahead".

If the value is "0", it indicates that the password is valid permanently.

history_count=?

Number of historical passwords reserved for an account.

The value is an integer between 0 and 30. If the value is "0", it means no limit.

enable_inactive_lock=?

Whether to enable the inactive lock mechanism. After the inactive lock mechanism is enabled, an account will be locked if the account doesn't login for days that exceed the threshold.

The value can be "yes" or "no".

user_review_enable=?

Whether to enable the function of auditing user accounts. If this function is enabled, the system will send alarms about user account audit periodically to remind the super administrator to audit the number, level, and status of user accounts to ensure account security.

The value can be "yes" or "no".

name_minimal_length=?

Minimal length of a user name.

The value is an integer between 5 and 32, expressed in "Bytes".

enable_login_notes=?

Whether to enable the login prompt mechanism. If this mechanism is enabled, information about the previous login will be displayed ,including login time and login IP address.

The value can be "yes" or "no".

enable_user_notes=?

Whether to enable the user-defined login prompt mechanism. If this mechanism is enabled, the preconfigured prompt is displayed upon login.

The value can be "yes" or "no".

reject_default_password=?

Whether to reject the default password. If the function is enabled, the password cannot be changed to the default one.

The value can be "yes" or "no".

Level

Administrator

Usage Guidelines

  • Only when enable_pwd_lock is set to yes, pwd_lock_time and pwd_incorrect_times are available.
  • When enable_inactive_lock is set to yes, inactive_lock_interval is mandatory.
  • Only when parameter max_valid_period is specified, prompt_ahead is available.
  • When parameter user_review_enable is set to yes, user_review_interval is mandatory.
  • When enable_user_notes is set to yes, user_notes is available.

Example

Enable the password lock mechanism and set the allowed times for entering incorrect passwords to 5.

admin:/>change safe_strategy enable_pwd_lock=yes pwd_lock_time=5 
Command executed successfully.

System Response

None

Translation
Download
Updated: 2019-09-02

Document ID: EDOC1000181601

Views: 331305

Downloads: 41

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next